Cisco Community
English
Register
We're here for you! LEARN about free offerings and business continuity best practices during the COVID-19 pandemic
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Choose one of the topics below for SD-WAN Resources to help you on your journey with SD-WAN

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC!
We will not comment or assist with your TAC case in these forums.

2038
Views
5
Helpful
17
Replies
Highlighted
FabOrth
Beginner
Beginner
‎11-22-2018 07:23 AM
‎11-22-2018 07:23 AM

SD-WAN vManage Problem with Port 8443

Hi together,

 

I have a problem with the vManage VM. I have an ESXI with the vManage.

 

I did the following steps installing vManage:

 

https://sdwan-docs.cisco.com/Product_Documentation/Getting_Started/Viptela_Overlay_Network_Bringup/03Deploy_the_vManage_NMS/01Create_vManage_NMS_Instance_on_ESXi

 

But the Problem is, vManage is not available. I am on a jump host with no security features. It is with the Server in the same Net. Therefore, i think its not a problem with the firewall...

I can  ping the Vm and it is possible to connect via ssh to the cli but connectiong via https is not possible. (Connection Failure)

The steps to configure are:

# config
(config)# vpn 512
(config)# ip route prefix/length next-hop-ip-address
(config-vpn-512)# interface eth0
(config-interface-eth0)# ip address ip-address
(config-interface-eth0)# no shutdown
(config-interface-eth0)# commit and-quit
#

Website link:

https://ip-address:8443/

 

Do you have any idea to fix the problem?

 

 

Thanks :)

Labels:
2 people had this problem
0 Helpful
Reply
17 REPLIES 17
Highlighted
elesani
Cisco Employee
Cisco Employee
‎11-25-2018 04:36 PM
‎11-25-2018 04:36 PM

Re: SD-WAN vManage Problem with Port 8443

Hi, 

 

To help me understand how you have deployed your vManage, can you share the "show run" from it. and also collect "request nms all status" 

 

Regards,
Ehsan

0 Helpful
Reply
Highlighted
FabOrth
Beginner
Beginner
‎11-25-2018 11:40 PM
‎11-25-2018 11:40 PM

Re: SD-WAN vManage Problem with Port 8443

Hello Elesani,

 

enclosed you will find two screenshots. One sh run and the other one is the request nms all status.

The IP-Address is a private one and the next hop is the default gateway

 

Thank you for taking care of the problem.

 

Regards

FabOrth

Everyone's tags (1)
0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
‎02-14-2019 09:45 AM
‎02-14-2019 09:45 AM

Re: SD-WAN vManage Problem with Port 8443

I am having the same issue?  Any updates please?

0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
‎02-14-2019 09:47 AM
‎02-14-2019 09:47 AM

Re: SD-WAN vManage Problem with Port 8443

BTW, I can SSH and Ping the vManage Server but not HTTPS to it.
Everyone's tags (3)
0 Helpful
Reply
Highlighted
ekhabaro
Cisco Employee
Cisco Employee
‎02-14-2019 09:55 AM
‎02-14-2019 09:55 AM

Re: SD-WAN vManage Problem with Port 8443

You should use tcp port 443: https://sdwan-docs.cisco.com/Product_Documentation/Getting_Started/Viptela_Overlay_Network_Bringup/01Bringup_Sequence_of_Events/Firewall_Ports_for_Viptela_Deployments

8443 is used for clusters and multitenant deployments.
0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
‎02-14-2019 10:05 AM
‎02-14-2019 10:05 AM

Re: SD-WAN vManage Problem with Port 8443

Does not seem to make any difference?

Config:
vmanage# sh run
system
host-name vmanage
admin-tech-on-failure
aaa
auth-order local radius tacacs
usergroup basic
task system read write
task interface read write
!
usergroup netadmin
!
usergroup operator
task system read
task interface read
task policy read
task routing read
task security read
!
usergroup tenantadmin
!
user admin
password $6$HBJoZjMzTIVTzdIa$mQbaGtnVT/R9HDQX7Uzt1dnYaVBE9VTmZvCbCmazSp7mBvCacjwoB3Dd71pNZUTaFGiHzE2lzrLsynyVyFI0h/
!
!
logging
disk
enable
!
!
!
vpn 0
interface eth0
ip dhcp-client
ipv6 dhcp-client
no shutdown
!
!
vpn 512
name ***Management_VPN***
interface eth1
ip address 10.44.136.25/24
no shutdown
!
!
0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
‎02-14-2019 10:09 AM
‎02-14-2019 10:09 AM

Re: SD-WAN vManage Problem with Port 8443

vmanage# request nms all status
NMS application server
Enabled: true
Status: waiting
NMS configuration database
Enabled: true
Status: running PID:23460 for 1113s
NMS coordination server
Enabled: true
Status: running PID:23488 for 1113s
NMS messaging server
Enabled: true
Status: not running
NMS statistics database
Enabled: true
Status: running PID:23376 for 1114s
NMS data collection agent
Enabled: true
Status: not running
NMS cloud agent
Enabled: true
Status: running PID:23837 for 1107s
NMS container manager
Enabled: false
Status: not running
NMS SDAVC proxy
Enabled: true
Status: running PID:328 for 6095s
0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
‎02-14-2019 11:18 AM
‎02-14-2019 11:18 AM

Re: SD-WAN vManage Problem with Port 8443

Any update?  I am using port 443 but it does not work, as stated earlier network connectivity is good for Ping and SSH.  Any suggestions would be welcome.

0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
‎02-15-2019 01:56 AM
‎02-15-2019 01:56 AM

Re: SD-WAN vManage Problem with Port 8443

I ran a port scan on the vManage server running on ESXi and the only ports open are 22 and another ssh port?? Any advice would be welcome at this point as I need to understand if this behaviour is normal?
0 Helpful
Reply
Highlighted
FabOrth
Beginner
Beginner
‎02-15-2019 02:07 AM
‎02-15-2019 02:07 AM

Re: SD-WAN vManage Problem with Port 8443

Hello g.ghir,

 

i solved the problem. In my case, the actual server was optimal in terms of specifications. By trying out another one that was even newer, vManage ran optimally.

So try to do vManage on a newer better server with ssd etc.

 

Hope it fixes your problem :)

Reply
Highlighted
g.ghir
Beginner
Beginner
‎02-15-2019 02:10 AM
‎02-15-2019 02:10 AM

Re: SD-WAN vManage Problem with Port 8443

Thanks FabOrth,

 

Can you guide me on your final settings within ESXi?  I know vManage is very hungry but as this is an evaluation it is running on a 'skinny' host.  

0 Helpful
Reply
Highlighted
Mi7
Beginner
Beginner
‎03-27-2019 05:57 AM
‎03-27-2019 05:57 AM

Re: SD-WAN vManage Problem with Port 8443

what's the exact solution to the issue?

0 Helpful
Reply
Highlighted
mm6646
Beginner
Beginner
‎04-11-2019 06:02 AM
‎04-11-2019 06:02 AM

Re: SD-WAN vManage Problem with Port 8443

I Have same problem too, did you get fix the issue?

0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
‎04-11-2019 06:46 AM
‎04-11-2019 06:46 AM

Re: SD-WAN vManage Problem with Port 8443

My vManage server did not have the horsepower needed so I left it there.
0 Helpful
Reply
Latest Contents
MST Configuration
Created by RS19 on 06-04-2020 11:19 PM
1
0
1
0
I have Cisco 2960 switch & I am going to use MST for spanning tree Below is the configuration spanning-tree mst configuration name TEST-MST revision 1 instance 1 vlan 101 instance 1 vlan 102 I have 2 VLANS & I wa... view more
Issues WS-C2960X-48FPD-L | some ports are not working
Created by hmc250000 on 06-04-2020 11:42 AM
7
0
7
0
We are having issues with  a WS-C2960X-48FPD-L running IOS 15.2(2)E7. Some ports  are simply not working. We had POE issues on some of the ports and decided to upgrade to hopefully resolve those issues but this has now become an even bigger issu... view more
Core switch replacement
Created by ffa1100 on 06-03-2020 03:17 AM
4
0
4
0
the scenario is :I'm replacing core Cisco switch 4506-E with switch 4507R-E. As I have one supervisor card on 4506-E and I'm going to take out all the card that I have in 4506-E and install it in the new 4507R-E. On the 4507R-E I have 2 slots for the supe... view more
SASE: the future of network and network security architectur...
Created by zied.turki on 06-02-2020 12:28 AM
0
0
0
0
Since its release in August of 2019, the SASE report released by Gartner has generated a lot of chatter regarding what SASE is all about. People are wondering whether it will be disruptive to the current network and network security designs and are curiou... view more
Establishing connection with a remote network not working
Created by zivx on 05-30-2020 02:56 PM
4
0
4
0
I tried to setup a virtual environment with 2960 switches and 2911 Router. In one part of the network where I connected PCs directly to the 2911 Router, I was able to communicate to the attached devices, having configured static route. In the th... view more
CreatePlease to create content
Discussion
Blog
Document
Video
Content for Community-Ad
Cisco Community April 2020 Spotlight Award Winners
Follow our Social Media Channels